• Security against current thefts.

Right now, if someone stole my phone, or get in with a trojan, just 6 digits save my money.
(Sorry i dont know too much about hacking, maybe is not the word)

In order to feel confortable with the security of our money, i suggest Two codes wich would be:
A - Pin Code for log into the app(4 digit). You can check, balance, edit account, move money between sub-accounts...
B - User Code for money transactions in/out of your account (6 or 8 digit).

This way, if someone steal your phone they could entry to the account if they get or guess the code, but cannot do any transactions, preventing him from withdrawing the money.

But plus: If the "B - Users Code" is never ask entirely, but just 3 diferent digits of the complete code every time, that would protect you from hacksers, who see the digits you press on screen, and they cannot know the entire code.

3 years ago, My mobile was hacked. And they get muy Pin Code to log in. Thanks to this metod used by my bank, they could detect a souspicious attempt, and we could save the account.
If it had been bunq... well now I wouldn't have the money

    Just a quick disclaimer, I do not work for bunq. However, I work in IT security.

    Accounts should be locked after several failed login attempts. Therefore, guessing the code is not a valid option.

    In case your device gets compromised this suggestion would only help slightly. Attackers with enough time can record every login from you and therefore can wait until they get every digit of your 6-8 digit code (in case only a few are required).

    In case of so called "shoulder surfing" where an attacker observes how you type in your passcode and steals your phone afterwards, you are right. If only certain digits are required and they differ each time, this could make it very difficult. However, the attack scenario is not very likely.

    I think this suggestion has some potential, however, in some cases I think it can even lower the security level. Having two different access levels would be nice. For example, you can enter with your code like before, however, doing transactions could require a second code (with settings for amount or disable it entirely). I'm not sure how to feel about the suggestion with only certain digits required from the code as in case of a guessing attack might reduce the complexity and therefore might result in codes being easier to guess.

      Write a Reply...